Procedure

1. Create the Tomcat SSL certificate for the IMSS management console, as follows:
   %IMSS_HOME%\UI\javaJRE\bin\keytool -genkey -alias tomcat -keyalg RSA -sigalg SHA1withRSA -keystore %IMSS_HOME%\UI\tomcat\sslkey\.keystore -validity 3652

   with a password value of changeit for both the certificate and the keystore itself

   Note The IMSS management console listens on port 8444. The EUQ management console listens on port 8446.

   For more details on SSL configuration in Tomcat, visit:

   http://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html
2. Create the Apache SSL certificate for the EUQ management console, as follows:
   1. Generate a Private Key and Certificate Signing Request (CSR):
      openssl req -new > new.cert.csr
   2. Remove pass-phrase from the key:
      openssl rsa -in privkey.pem -out new.cert.key
   3. Generate a Self-Signed Certificate:
      openssl x509 -in new.cert.csr -out new.cert.cert -req -signkey new.cert.key -days 3652 -sha1

      Note The IMSS management console listens on port 8445. The EUQ management console listens on port 8447.

   4. Copy the certificate and key to the Apache path:
      copy new.cert.cert %IMSS_HOME%\UI\apache\conf\ssl.crt\server.crt

      copy new.cert.key %IMSS_HOME%\UI\apache\conf\ssl.key\server.key